摘要
互联网协议第六版(IPv6)是互联网升级演进的必然趋势、网络技术创新的重要方向、网络强国建设的基础支撑。随着IPv6规模部署和应用的全面推进,IPv6网络资产发现与管理也面临了越来越多的现实挑战。作为IPv6网络资产发现的关键技术,IPv6节点指纹探测存在可识别操作系统类型总数较少、对新版本操作系统支持度低、探测成功率较低、探测精准度不高等问题,本文通过对现有IPv6指纹探测方法和工具进行分析研究,提出了基于特征字段序列的IPv6节点指纹探测方法,能够按照不同操作系统间特征字段序列的差异性进行IPv6节点操作系统类型的识别判定。依据所提方法实现了OSDetector6探测工具,测试结果表明该工具对IPv6节点操作系统的探测成功率提高至93.75%,并能更加精准地识别出至少15种版本操作系统类型。
Internet Protocol version 6(IPv6)is the inevitable trend of internet evolution,the important direction of network technology innovation,as well as the basic support of the cyberpower construction for a country.China has set the goal of becoming a crucially global driving force for leading the development of IPv6+technology.However,with the full-scale deployment and application of IPv6,IPv6 asset discovery and management are facing more and more practical challenges.As a key technology,it is found that the currently available fingerprint detection technology of IPv6 node operating system(OS)has many universal problems,such as few types of recognizable OS types,low support for the new version of the operating system,low success rate of detection,poor accuracy of detection and etc.Analyzing the existing IPv6 fingerprint detection methods and tools,OSDetector6,a detection tool of OS fingerprint detection method based on feature field sequence is designed in this paper,which identifies the IPv6 node OS types according to the feature-field-sequence differences among different OS.Tests revealed that OSDetector6 improves the success rate of IPv6 node OS detection to 93.75%while is able to accurately identify more than 15 OS types.
作者
程兰馨
张连成
马志立
郭毅
杜雯雯
Cheng Lanxin;Zhang Liancheng;Ma Zhili;Guo Yi;Du Wenwen(Information Engineering University,Zhengzhou Henan,450001)
出处
《工业信息安全》
2022年第2期31-38,共8页
Industry Information Security
